By outside system call, do you mean a front end application? And if so, does this front end application call some stored procedures and you are trying to restrict access to others?
I must admit, I have never used them, but an application role may be able to do what you need? Others may be able to tell you whether an application role will fit your needs...